跳到主要內容

工作機會

COVID-19:

我們同事和求職者的健康和安全是我們的重中之重。 因此,花旗繼續密切監視COVID-19的情況。 我們已在全球範圍內對整個公司實施了預防措施,包括暫時地進行所有面對面面試,直到需要時另行通知。

Safety and Soundness Secure by Design Manager – C13 - Hybrid

工作 ID 22490084 主要地點 Irving, Texas, Jacksonville, Florida; 工作類別 Technology
立即申請

Brief Description of the Organization

Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Our mission is to serve as a trusted partner to our clients by responsibly providing financial services that enable growth and economic progress. We strive to earn and maintain our clients’ and the public’s trust by constantly adhering to the highest ethical standards and making a positive impact on the communities we serve.

Citi’s Personal Banking and Wealth Management (PBWM) business is building a purpose-driven team to serve its globally diverse, digitally forward customers in top cities around the world. We’re looking for exceptional candidates who think digitally and differently, resolve problems in unconventional ways and strive to provide a remarkable experience for our clients. We define success by our Citi Leadership Standards: We take ownership, we deliver with pride and we succeed together.

Overview of the Role

Safety and Soundness is part of the Personal Banking and Wealth Management Technology (PBWMT) Engineering Risk & Controls and Transformation organization. Safety and Soundness (S&S) is a first line of defense function that provides services and products to technology ensuring the oversight and execution of information security and technology governance, risk, and compliance. S&S collaborates with other technology, risk and controls, and business leaders to identify and propose solutions that ensure strict adherence to Citi policies, standards, and regulatory commitments.

The Safety and Soundness Secure by Design Manager will partner with Engineering and other stakeholders in support of driving the implementation of DevSecOps requirements embedding security controls in the software development lifecycle.  Partnering with Engineering, this individual will drive the implementation of industry standard cybersecurity and application security best practices throughout the software delivery pipeline and support functions.

General Responsibilities:

  • Lead the design and implementation of automated security tools throughout the CI/CD pipeline
  • Drive DevSecOps projects partnering with Engineering as part of continuous secure by design assessments
  • Lead security reviews for new initiatives or enhancements to ensure security requirements are embedded upon project initiation
  • Lead current state DevSecOps security controls reviews and provide recommendations based on industry security standards.
  • Partner with Engineering to drive the shift-left security strategy preventing vulnerabilities in product line code early in the software delivery lifecycle
  • Partners with other Safety & Soundness teams, Engineering and Risk Management to automate built-in Safety & Soundness requirements and risk management policies into the SDLC pipeline whenever possible
  • Helps develop and maintain roadmaps for evolution of Safety & Soundness Controls by Design including supporting key Citi strategic business and technology goals
  • Maintains and applies practical experience in working with or directing teams to oversee execution on multiple security domains (e.g., application security, vulnerability reduction, data protection, encryption, logging and monitoring, network security, incident management, secure systems development lifecycle, application resiliency and operational risk management)
  • Responsible for building Safety & Soundness into integrated function within the entire Controls by Design process
  • Create and deliver presentations that report on Safety and Soundness organizational objectives and key results.
  • Demonstrates technology product thought leadership with respect to the key technologies and practices adopted, challenging status quo to position Citi to compete in an era of increased competition and digital disruption
  • Manages timely Safety and Soundness Controls by Design engagements as well as risk management, including audit and regulatory engagements
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervise the activity of others and create accountability with those who fail to maintain these standards.
  • Cultivate an inclusive team culture that embraces diversity of thought, different backgrounds and experiences.

Qualifications:

  • 6-10 years of relevant experience in Engineering, Product Management, and Cybersecurity, Information Security Management or Risk Management with focus on application and platform security. DevSecOps implementation or application security experience
  • Experience working in Financial Services or a large complex and/or global environment
  • Experience with ServiceNow, Jira, Jenkins, GitHub, GitLab, GCP AWS, OpenShift, and Azure DevOps.
  • Working knowledge and experience with multiple security domains (e.g., application security, vulnerability reduction, data protection, encryption, logging and monitoring, network security)
  • Subject Matter Expert (SME) experience with Secure Software Development Life Cycle (SSDLC) (e.g. risk assessments, threat modeling, static code analysis, code reviews and dynamic application scanning)
  • Experience working in or directing a matrix environment across globally dispersed teams. 
  • Strong written and verbal communication skills to effectively community technology risk to business and other stakeholders.
  • Strong problem solving, analytical skills, and product management skills.
  • Certifications a plus, i.e., CISSP, CCSP, CRISC, CISA,

Education:

  • Bachelor’s degree/University degree in Computer Science, Software Engineering, Information Systems or equivalent experience
  • Master’s degree preferred

-------------------------------------------------

Job Family Group:

Technology

-------------------------------------------------

Job Family:

Information Security

------------------------------------------------------

Time Type:

Full time

------------------------------------------------------

Primary Location:

Irving Texas United States

------------------------------------------------------

Primary Location Salary Range:

$116,880.00 - $175,320.00

------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting

-----------------------------

Effective November 1, 2021, Citi requires that all successful applicants for positions located in the United States or Puerto Rico be fully vaccinated against COVID-19 as a condition of employment and provide proof of such vaccination prior to commencement of employment.

立即申請
  • 加入我們超過 220,000 人實力堅強的多元化團隊

  • 熱心公益的員工在 90 個國家/地區的社區擔任志工

  • 在超過 95 個市場擁有實體據點,提供富有意義的工作機會

我們培養一種文化,擁抱所有個體並鼓勵多元觀點,您可以發揮影響力並發展職業生涯。在 Citi,我們重視展現高度專業水準、有強烈道德感和慷慨大方、對知識充滿好奇又有活力的同事。我們了解擁有一份職業的重要性,且承諾您,若您擁有了,我們一定會提供長遠保障。

已儲存工作

您沒有保存的工作

瀏覽過的工作

您沒有瀏覽過的工作